5 matches found
RHEL 7 : instack-undercloud (RHSA-2017:2687)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2017:2687 advisory. instack-undercloud provides a collection of scripts and elements that can be used to install an OpenStack undercloud using python-instack. Security...
CVE-2017-7549
A flaw was found in instack-undercloud 7.2.0 as packaged in Red Hat OpenStack Platform Pike, 6.1.0 as packaged in Red Hat OpenStack Platform Oacta, 5.3.0 as packaged in Red Hat OpenStack Newton, where pre-install and security policy scripts used insecure temporary files. A local user could exploi...
CVE-2017-7549
The CVE-2017-7549 issue affects instack-undercloud components in Red Hat OpenStack Platform: 7.2.0 (Pike), 6.1.0 (Oacta), and 5.3.0 (Newton). The root cause is insecure temporary files used by pre-install and security policy scripts, enabling a local user to perform a symbolic-link attack and ove...
Moderate: Red Hat Security Advisory: instack-undercloud security, bug fix, and enhancement update
An update for instack-undercloud is now available for Red Hat OpenStack Platform 10.0 Newton. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...
Moderate: Red Hat Security Advisory: instack-undercloud security update
An update for instack-undercloud is now available for Red Hat OpenStack Platform 9.0 Mitaka director. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...